Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
File: HDRPEVl1lIgoU6eVgd0r94nusx8.mft (raw, json)
Hash identifier: TEpfVM8GQVd31T0SWdVL+oTDI1naqVy9t39oWdH91Zc=
Subject key identifier: FF:FE:11:85:7A:9B:78:3A:29:B8:77:E4:F8:E9:4A:A3:82:50:5F:AD
Authority key identifier: 1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
Certificate issuer: /CN=1c344f11597594882853a79581dd2bf789eeb31f
Certificate serial: 0196C871DCD0321036697F154418E3B60582
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
Manifest number: 130D
Signing time: Tue 13 May 2025 07:00:27 +0000
Manifest this update: Tue 13 May 2025 07:00:27 +0000
Manifest next update: Wed 14 May 2025 07:00:27 +0000
Files and hashes: 1: HDRPEVl1lIgoU6eVgd0r94nusx8.crl (hash: ojp2ennJ2iYiG9RxxkjW1kPvoWAzqUeeOrObtcP6QXM=)
2: OLwYzj-fOtPupeVPjMakvIdCk14.roa (hash: w82sMMgD2hDeR96YGrYPpR7eSx7BTygOkVtPfhR7sSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 07:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:71:dc:d0:32:10:36:69:7f:15:44:18:e3:b6:05:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c344f11597594882853a79581dd2bf789eeb31f
Validity
Not Before: May 13 07:00:27 2025 GMT
Not After : May 14 07:00:27 2025 GMT
Subject: CN=fffe11857a9b783a29b877e4f8e94aa382505fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ef:b5:87:8d:64:d7:1b:0b:95:ff:3a:3d:2d:
76:39:93:c8:de:6a:9d:8e:1b:bb:be:2a:1f:2f:99:
2f:26:f5:7f:45:48:f0:f0:91:90:13:dd:04:32:0a:
67:0e:17:80:12:79:64:f0:a9:6b:3c:05:e5:c2:64:
16:d9:b5:2d:b6:d5:13:90:4b:50:6e:4d:74:64:2e:
6b:06:ba:3c:2c:72:58:88:27:b6:ce:f5:2b:bd:10:
15:a4:34:82:36:99:12:1c:c9:fb:6d:eb:37:a3:17:
fe:ee:e8:60:86:f2:7f:e6:42:2c:62:e5:33:b3:7c:
7b:38:cd:68:66:5b:e0:40:10:f2:cc:5a:e1:86:24:
0b:4c:ff:11:d2:a3:ed:37:a4:cf:ef:fb:00:0f:35:
e7:b8:74:d2:08:cc:bf:e0:46:b8:8a:04:94:41:e3:
e2:df:2e:b0:27:15:6d:b1:10:8f:c1:41:fa:d4:da:
f1:c1:2c:83:d5:fb:e8:22:5d:e1:ab:55:d2:64:36:
d6:dc:29:2e:82:9e:c2:98:0b:2a:54:c0:be:5e:2c:
c1:8c:4e:47:3f:4b:1e:17:13:b4:5b:5c:65:05:08:
94:53:33:a0:a3:b0:a0:43:b6:61:92:31:d5:74:f8:
47:48:06:49:cc:bc:8e:9f:1f:2a:ca:47:f3:91:3f:
96:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FE:11:85:7A:9B:78:3A:29:B8:77:E4:F8:E9:4A:A3:82:50:5F:AD
X509v3 Authority Key Identifier:
keyid:1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:71:f6:b6:d1:7d:0a:4a:7c:e3:e7:89:b1:33:c6:f8:32:d9:
10:f6:2a:f2:59:ad:ea:08:ed:6c:a2:3f:f4:a2:dd:60:7b:1c:
cb:08:9e:a7:e3:3c:4b:b1:be:9b:62:96:6e:98:37:9c:7a:eb:
9a:42:be:c0:de:47:19:a4:6c:3f:a2:d2:58:2a:d3:08:87:97:
ec:f9:7b:60:a4:5c:a6:34:3b:6a:c5:64:5c:2e:0c:72:12:97:
f8:de:92:48:10:51:14:48:cf:f6:9e:fe:6b:3a:d4:40:cb:b5:
53:f5:34:4b:db:4d:da:c8:0c:26:17:81:5b:52:9e:8a:f3:25:
f4:0d:b7:dc:7b:f9:d8:e7:8d:f1:6f:eb:57:66:db:80:52:b1:
46:21:48:b8:aa:3f:3b:61:cf:32:ce:0b:09:5b:59:0e:ba:44:
c5:ad:9b:00:34:d0:bc:31:11:7a:13:58:0c:c9:da:3a:57:c9:
18:71:2a:e0:f8:2d:19:3a:ad:21:f1:5a:92:95:35:16:a7:cf:
04:52:dc:28:64:94:52:15:c1:d8:9a:13:a0:da:87:af:b2:c6:
ed:db:5d:78:87:c4:0a:68:2d:da:60:37:be:5b:02:89:9d:d3:
2b:e5:3d:0f:52:f5:68:09:d7:0d:78:71:1b:d6:18:fb:6d:21:
77:4e:2e:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbIcdzQMhA2aX8VRBjjtgWCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMzQ0ZjExNTk3NTk0ODgyODUzYTc5NTgxZGQyYmY3ODll
ZWIzMWYwHhcNMjUwNTEzMDcwMDI3WhcNMjUwNTE0MDcwMDI3WjAzMTEwLwYDVQQD
EyhmZmZlMTE4NTdhOWI3ODNhMjliODc3ZTRmOGU5NGFhMzgyNTA1ZmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoe+1h41k1xsLlf86PS12OZPI3mqd
jhu7viofL5kvJvV/RUjw8JGQE90EMgpnDheAEnlk8KlrPAXlwmQW2bUtttUTkEtQ
bk10ZC5rBro8LHJYiCe2zvUrvRAVpDSCNpkSHMn7bes3oxf+7uhghvJ/5kIsYuUz
s3x7OM1oZlvgQBDyzFrhhiQLTP8R0qPtN6TP7/sADzXnuHTSCMy/4Ea4igSUQePi
3y6wJxVtsRCPwUH61NrxwSyD1fvoIl3hq1XSZDbW3Ckugp7CmAsqVMC+XizBjE5H
P0seFxO0W1xlBQiUUzOgo7CgQ7ZhkjHVdPhHSAZJzLyOnx8qykfzkT+WSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP/+EYV6m3g6Kbh35PjpSqOCUF+tMB8GA1UdIwQY
MBaAFBw0TxFZdZSIKFOnlYHdK/eJ7rMfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSERSUEVWbDFsSWdvVTZlVmdkMHI5NG51c3g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9mMDYxOTEtYjBhOC00OTUwLWIwMjct
ZGVlYzZmY2YyZDk1LzEvSERSUEVWbDFsSWdvVTZlVmdkMHI5NG51c3g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9mMDYxOTEtYjBhOC00OTUwLWIwMjctZGVlYzZmY2YyZDk1
LzEvSERSUEVWbDFsSWdvVTZlVmdkMHI5NG51c3g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHHH2ttF9
Ckp84+eJsTPG+DLZEPYq8lmt6gjtbKI/9KLdYHscywiep+M8S7G+m2KWbpg3nHrr
mkK+wN5HGaRsP6LSWCrTCIeX7Pl7YKRcpjQ7asVkXC4MchKX+N6SSBBRFEjP9p7+
azrUQMu1U/U0S9tN2sgMJheBW1KeivMl9A233Hv52OeN8W/rV2bbgFKxRiFIuKo/
O2HPMs4LCVtZDrpExa2bADTQvDERehNYDMnaOlfJGHEq4PgtGTqtIfFakpU1FqfP
BFLcKGSUUhXB2JoToNqHr7LG7dtdeIfECmgt2mA3vlsCiZ3TK+U9D1L1aAnXDXhx
G9YY+20hd04ukQ==
-----END CERTIFICATE-----
Generated at Tue May 13 17:37:04 2025 by rpki-client